CVE-2017-2231

EPSS 1.2%

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 1.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

07 jul 2017Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

Untrusted search path vulnerability in The installer of MLIT DenshiSeikabutsuSakuseiShienKensa system Ver3.02 and earlier, distributed till June 20, 2017, The self-extracting archive including the installer of MLIT DenshiSeikabutsuSakuseiShienKensa system Ver3.02 and earlier, distributed till June 20, 2017 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Produtos afetados

Ministry of Land, Infrastructure, Transport and Tourism, Japan · The installer of MLIT DenshiSeikabutsuSakuseiShienKensa system Ministry of Land, Infrastructure, Transport and Tourism, Japan · The self-extracting archive including the installer of MLIT DenshiSeikabutsuSakuseiShienKensa system

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://jvn.jp/en/jp/JVN06337557/index.html http://www.mlit.go.jp/common/001189444.pdf http://www.mlit.go.jp/gobuild/gobuild_cals_sysv3.html